ShadowIllusion Posted April 4, 2010 Report Posted April 4, 2010 Hi, for security reasons, I change username 'root' and pass 'root' to something else like 'abcdef' and '123456'... After changing the username, the MySQL server would not shutdown if you use Start.exe > Stop Uniserver Maybe it is located in UniServer\unicon\main\includes\functions.php LINE 342 $cmd3 = US_MYSQL_BIN."/mysqladmin.exe --port=$mysql_port --user=root --password=$mysql_password shutdown\""; Look at the bolded parts. I changed it to 'abcdef' and now MySQL server can be turned off properly... My main point:Besides get_mysql_password(), please would you mind to also implement something like get_mysql_username() ? Quote
Ric Posted April 4, 2010 Report Posted April 4, 2010 There is no need to change root name only the password is required. You should never use the root account for anything else other than administration.Or installing applications, this make life a little easier however you must create a restricted user for that application see Wiki for details. All the bestRic Quote
ShadowIllusion Posted April 7, 2010 Author Report Posted April 7, 2010 Yes but I decided to tighten the security a little further so I change the 'root' username, too... Now in my UniServer conf, user 'root' does not exist... So attacker can't even guess the password... He must guess the username also... Besides administration user, I also have created restricted user. Thanks for your advices Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.